SDET; CyberSecurity Validation
Listed on 2026-07-16
-
Security
Cybersecurity
Software Development Engineer in Test (SDET)
Chicago IL , Dallas TX (3 days Onsite)
Overview:
We are seeking a Senior Software Development Engineer in Test (SDET) on a contract basis to support the Claude Mythos Preview deployment. This role combines test automation with cybersecurity, focusing on developing and maintaining automated testing pipelines that validate security vulnerabilities and confirm remediation efforts before fixes are deployed into production environments.
This is an intermediate-level individual contributor position requiring at least 3 years of relevant experience. While the role has no direct supervisory responsibilities, it will partner closely with Security, Dev Ops, and Governance teams to ensure the quality, reliability, and effectiveness of security validation processes.
Responsibilities:
- Design and maintain automated regression test suites that validate patches for vulnerabilities identified by Claude Mythos Preview, including CVEs across OS, browser, and middleware layers.
- Write and maintain security-oriented test cases covering OWASP Top 10 categories, authentication bypass, privilege escalation, and injection attack vectors.
- Integrate AI-assisted test generation using Claude Code to accelerate coverage of vulnerability fix validation and reduce manual test authoring effort.
- Leverage Selenium Web Driver, Cucumber BDD, and TestNG/JUnit for functional regression suites that confirm security fixes do not introduce regressions.
- Author Gherkin feature files that document security acceptance criteria in human-readable form for audit and compliance purposes.
- Integrate security regression suites into Jenkins pipelines, ensuring every patch promotion triggers automated vulnerability validation before environment advancement.
- Manage test environment deployments using Harness and Rancher, with a focus on reproducible security testing contexts across DEV, SLFT, RST, and BUAT environments.
- Maintain YAML/Groovy pipeline configurations that enforce security test gates as entry/exit criteria for each release cycle.
- Ensure all automated tests are properly tagged (including @) and running in all target environments per EQM compliance requirements.
- Track vulnerability fix validation results in Spira Test and Jira, maintaining traceability from Mythos-identified CVE through patch, test, and closure.
- Generate security test metric reports via Spira Test and Splunk to provide evidence-based confirmation that vulnerability fixes are verified before release.
- Support EQM Governance reporting by providing daily defect status on security-related C+H defects to pillar leads.
- Partner with the Security team and Mythos Preview integration partners to understand newly identified vulnerabilities and translate them into testable acceptance criteria.
- Participate in Agile ceremonies as an embedded quality advocate for security testing.
- Conduct testability reviews during design and code review phases with a security lens.
Qualifications:
Required Qualifications:
- 3 years of professional experience as a Software Development Engineer in Test or equivalent role.
- Hands-on experience with Selenium Web Driver, Cucumber BDD, TestNG/JUnit, and Rest Assured.
- Working knowledge of security testing concepts including OWASP Top 10, CVE workflows, and common vulnerability classes (injection, authentication bypass, privilege escalation).
- Experience integrating automated test suites into Jenkins CI/CD pipelines with Git/Git Hub version control.
- Proficiency with Java, Gherkin, YAML, and JSON in a testing context.
- Familiarity with AI-assisted development tools — Claude Code is required, not optional, for this role.
- Solid understanding of STLC, Agile methodologies, and defect management workflows in Spira Test and Jira.
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, Computer Information Systems, or a closely related field, plus a minimum of 3 years of professional experience as a Software Test Engineer or equivalent role.
Preferred Qualifications:
- Background in financial services, regulated industry environments, or critical infrastructure security.
- Exposure to static analysis tools (e.g., Sonar Qube, Checkmarx) or DAST tooling.
- Familiarity with Docker and container-based test environment management.
- ISTQB or security-related certification (e.g., CompTIA Security+, CEH) is a plus.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).